$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: 9l8IGpadOkQEWLZoCAAaG10D9XTsecAph5JLFD7wgZk= Subject key identifier: 0E:CE:0A:94:4E:96:BA:CA:1D:9D:00:8D:65:48:B3:7C:C4:DD:14:14 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 34DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 3480 Signing time: Fri 22 Nov 2024 14:54:12 +0000 Manifest this update: Fri 22 Nov 2024 14:54:12 +0000 Manifest next update: Fri 29 Nov 2024 14:54:12 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: HuncDyf/uN2P4ZgWplutSbLSFylxDDV888bbt77dG94=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: GdpPqk3j46qrhM/D3Q+zjZqlqm9OzVhbyylENAX11Ng=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 5arC7pafcKh/AcWsnn6ZMn4yInbZRBna+RKiehfd8iA=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: xpjctOic9ALUbvMpVasWFZFNE3OfU+88qrN9oKY4+Dw=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: 5S03I75+hNJBuUJ5fNzxs9YO5CLy34Di8bLlb2dNGpY=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: LZzUQOcRmtmL+1vVju87h7++WY3DSavtT2Wpvh36ohE=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: syWvSLG7GaKla/rfCIba4Fb9KHufM9emZCvug3k1Tm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13535 (0x34df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Nov 22 14:54:12 2024 GMT Not After : Nov 29 14:54:12 2024 GMT Subject: CN=67409b14-4401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:22:bd:3c:36:a3:66:c5:31:62:28:71:59:e8: 7c:1d:a8:a9:d8:ae:71:0a:01:dd:3c:8f:9c:ff:ec: f0:b6:49:e6:50:ae:20:3e:69:7c:d4:d8:41:b1:83: 46:7b:1b:52:d7:b7:c3:e5:f1:7f:da:42:ad:52:a5: f9:f4:f5:5e:29:b2:2f:ba:16:07:1e:c2:38:37:f9: b7:ec:5e:00:10:13:12:06:d5:2c:9e:7e:43:c2:58: c0:32:38:76:b9:8f:bc:c3:26:96:08:89:13:24:99: 60:70:82:2e:ab:16:23:ce:d8:b5:4f:6b:d7:93:88: 90:2d:fe:26:18:54:90:a6:d6:d2:be:3f:c1:6a:21: 0d:87:9f:ed:ff:c5:5b:8b:6b:b3:48:47:77:ac:ca: ad:14:25:49:02:e9:b2:e8:43:81:05:ba:27:eb:ad: 33:2d:60:e9:b5:7c:18:79:42:46:34:33:e6:29:32: b2:88:b7:3f:db:36:3e:f8:8b:42:d2:61:5d:6e:4f: cf:ee:a3:73:29:fc:2f:fc:c3:9a:f2:67:bd:f9:1b: 7c:36:ba:a0:15:df:80:7b:3d:36:8c:02:51:1d:19: 5b:8e:9f:9f:92:7c:9e:d3:cc:16:7e:30:53:41:ce: 76:79:a5:25:dd:70:74:f6:8f:d3:eb:cf:a4:64:3d: a3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CE:0A:94:4E:96:BA:CA:1D:9D:00:8D:65:48:B3:7C:C4:DD:14:14 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:7d:d7:0d:69:a3:d4:18:29:db:45:bf:e1:51:8f:c0:f9:e7: 4d:df:70:0c:0c:f3:06:64:5c:97:3e:97:de:d8:75:7d:22:74: d2:2d:8c:59:3c:18:99:a0:74:1d:30:6a:79:d1:c4:09:78:c0: 1c:f4:b2:af:d2:8e:26:aa:4b:f1:b2:cc:84:70:8c:19:42:0f: dd:7c:71:e6:30:58:d4:27:9e:e3:c1:ee:fb:69:42:19:1f:82: b7:54:3e:16:2d:d8:02:f0:8d:9f:df:bc:e6:46:78:9a:f0:09: 00:70:25:20:8c:4e:e1:a8:01:72:01:08:63:a3:a8:cf:08:2e: 89:7e:ae:94:b3:53:f1:29:6b:3e:d5:02:9a:66:bd:a6:89:1b: db:8e:d6:bd:50:a0:98:d0:34:29:7c:7b:76:21:82:0e:8a:2b: e9:b8:67:c5:0c:c6:42:e6:be:36:32:e1:8e:2e:77:d6:bd:9b: dc:b2:18:80:3b:f5:d3:f8:14:9b:97:21:27:84:c9:c4:72:04: bc:7c:2a:1f:39:fd:b1:c4:81:e6:2a:b3:18:c5:13:e7:e9:2f: 11:d5:12:75:47:af:b6:ce:d8:08:a6:ba:49:77:c9:0e:8b:15: c7:e4:d3:fc:05:ae:77:c5:3e:23:a0:7c:50:2b:42:e8:49:b1: fa:b4:d7:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjQxMTIyMTQ1NDEyWhcNMjQxMTI5MTQ1NDEyWjAYMRYwFAYD VQQDEw02NzQwOWIxNC00NDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yK9PDajZsUxYihxWeh8Haip2K5xCgHdPI+c/+zwtknmUK4gPml81NhBsYNG extS17fD5fF/2kKtUqX59PVeKbIvuhYHHsI4N/m37F4AEBMSBtUsnn5DwljAMjh2 uY+8wyaWCIkTJJlgcIIuqxYjzti1T2vXk4iQLf4mGFSQptbSvj/BaiENh5/t/8Vb i2uzSEd3rMqtFCVJAumy6EOBBbon660zLWDptXwYeUJGNDPmKTKyiLc/2zY++ItC 0mFdbk/P7qNzKfwv/MOa8me9+Rt8NrqgFd+Aez02jAJRHRlbjp+fknye08wWfjBT Qc52eaUl3XB09o/T68+kZD2jrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7OCpRO lrrKHZ0AjWVIs3zE3RQUMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqfdcNaaPUGCnbRb/hUY/A+edN33AMDPMGZFyXPpfe2HV9InTSLYxZ PBiZoHQdMGp50cQJeMAc9LKv0o4mqkvxssyEcIwZQg/dfHHmMFjUJ57jwe77aUIZ H4K3VD4WLdgC8I2f37zmRnia8AkAcCUgjE7hqAFyAQhjo6jPCC6Jfq6Us1PxKWs+ 1QKaZr2miRvbjta9UKCY0DQpfHt2IYIOiivpuGfFDMZC5r42MuGOLnfWvZvcshiA O/XT+BSblyEnhMnEcgS8fCofOf2xxIHmKrMYxRPn6S8R1RJ1R6+2ztgIprpJd8kO ixXH5NP8Ba53xT4joHxQK0LoSbH6tNfB -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org